MS14-040: Vulnerability in ancillary function driver could allow elevation of privilege: July 8, 2014

Resolves a vulnerability in Windows that could allow elevation of privilege an attacker logs on to a system and runs a specially crafted application.INTRODUCTIONMicrosoft has released security bulletin MS14-040. To learn more about this security bulletin: Home...

CVE-2013-3887

The Ancillary Function Driver AFD in afd.sys in the kernel-mode drivers in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, and Windows Server 2012 allows local users to obtain sensitive information from kernel...

Information disclosure

The Ancillary Function Driver AFD in afd.sys in the kernel-mode drivers in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, and Windows Server 2012 allows local users to obtain sensitive information from kernel...

MS13-093: Vulnerability in Windows Ancillary Function Driver Could Allow Information Disclosure (2875783)

The remote Windows host contains a version of the Ancillary Function Driver afd.sys that has a flaw that could allow a local attacker to obtain information from a higher privileged account. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid70851; scriptversion"1.7";...

CVE-2013-3887

CVE-2013-3887 describes a local information-disclosure flaw in the Ancillary Function Driver (afd.sys) across multiple Windows kernels (XP SP2, Server 2003 SP2, Vista SP2, Server 2008 SP2/R2 SP1, 7 SP1, 8, Server 2012). The root cause is improper copy operations in afd.sys that allow a local atta...

MS Windows Ancillary Function Driver Information Disclosure Vulnerability (2875783)

This host is missing an important security update according to Microsoft Bulletin MS13-093 OpenVAS Vulnerability Test $Id: secpodms13-093.nasl 32358 2013-11-11 09:00:42Z nov$ MS Windows Ancillary Function Driver Information Disclosure Vulnerability 2875783 Authors: Shakeel Copyright: Copyright c...

Microsoft Windows Ancillary Function Driver Information Disclosure Vulnerability (2875783)

This host is missing an important security update according to Microsoft Bulletin MS13-093 SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Windows Ancillary Function Driver CVE-2013-3887 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. An attacker can leverage this issue to disclose kernel memory and obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 7 for x64-based Systems SP1 Microsoft...

MS Windows Ancillary Function Driver Privilege Elevation Vulnerabilities (2645640)

This host is missing an important security update according to Microsoft Bulletin MS12-009. OpenVAS Vulnerability Test $Id: secpodms12-009.nasl 5346 2017-02-19 08:43:11Z cfi $ MS Windows Ancillary Function Driver Privilege Elevation Vulnerabilities 2645640 Authors: Antu Sanadi Copyright: Copyrigh...

Microsoft Windows Ancillary Function Driver Privilege Elevation Vulnerabilities (2645640)

This host is missing an important security update according to Microsoft Bulletin MS12-009. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

CVE-2012-0149

afd.sys in the Ancillary Function Driver in Microsoft Windows Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."...

CVE-2012-0148

afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 on 64-bit platforms does not properly validate user-mode input passed to kernel mode, which allows local users to...

Privilege escalation

afd.sys in the Ancillary Function Driver in Microsoft Windows Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."...

Privilege escalation

afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 on 64-bit platforms does not properly validate user-mode input passed to kernel mode, which allows local users to...

CVE-2012-0148

CVE-2012-0148 affects the Windows Ancillary Function Driver (afd.sys). The vulnerability stems from improper validation of user-mode input before crossing to kernel mode, enabling local privilege escalation. Affected on 64-bit Windows platforms: XP SP2, Server 2003 SP2, Vista SP2, Server 2008 SP2...

CVE-2012-0149

afd.sys in the Ancillary Function Driver in Microsoft Windows Server 2003 SP2 does not properly validate user-mode input passed to kernel mode, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."...

CVE-2012-0149

CVE-2012-0149 affects the Windows Ancillary Function Driver (afd.sys) used by Windows Server 2003 SP2. The vulnerability arises from improper validation of user-mode input passed to kernel mode, enabling local privilege escalation. CVSS2 base score is 7.2 (HIGH) with local attack vector and no au...

CVE-2012-0148

afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 on 64-bit platforms does not properly validate user-mode input passed to kernel mode, which allows local users to...

Microsoft Windows Ancillary Function Driver CVE-2012-0148 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Technologies Affected Avaya Aura...

PT-2012-2350 · Microsoft · Windows Server 2003 +5

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP SP2 Microsoft Windows Server 2003 SP2 Microsoft Windows Vista SP2 Microsoft Windows Server 2008 SP2, R2, and R2 SP1 Microsoft Windows 7 Gold and SP1 on 64-bit platforms Description: The issue arises from the Ancillary...